Kerberos Unkeyed Checksum Vulnerability

Kerberos Unkeyed Checksum Vulnerability

CVE-2011-0043 · HIGH Severity

AV:L/AC:L/AU:N/C:C/I:C/A:C

Kerberos in Microsoft Windows XP SP2 and SP3 and Server 2003 SP2 supports weak hashing algorithms, which allows local users to gain privileges by operating a service that sends crafted service tickets, as demonstrated by the CRC32 algorithm, aka "Kerberos Unkeyed Checksum Vulnerability."

Learn more about our Cis Benchmark Audit For Server Software.